Bleeping Computer

Backdoored Telnyx PyPI package pushes malware hidden in WAV audio

TeamPCP hackers compromised the Telnyx package on the Python Package Index today, uploading malicious versions that deliver credential-stealing malware hidden inside a WAV file. Earlier today, the ...
The Hacker News

TeamPCP Pushes Malicious Telnyx Versions to PyPI, Hides Stealer in WAV Files

Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.
CSO Online

Attackers exploit critical Langflow RCE within hours as CISA sounds alarm

Attackers weaponized critical RCE within hours, prompting CISA to add the flaw to its KEV catalog and set an urgent patch ...

CISA: New Langflow flaw actively exploited to hijack AI workflows

The Cybersecurity and Infrastructure Security Agency (CISA) is warning that hackers are actively exploiting a critical ...
InfoWorld

PyPI warns developers after LiteLLM malware found stealing cloud and CI/CD credentials

The compromised packages, linked to the Trivy breach, executed a three‑stage payload targeting AWS, GCP, Azure, Kubernetes ...
The Hacker News

Trivy Security Scanner GitHub Actions Breached, 75 Tags Hijacked to Steal CI/CD Secrets

Trivy attack force-pushed 75 tags via GitHub Actions, exposing CI/CD secrets, enabling data theft and persistence across ...

Sungjae Im gets dialed in and shoots 64 to lead the Valspar Championship

Sungjae Im appears to be dialed in after returning from a wrist injury and missing his last two cuts. He shot a 64 at the Valspar Championship for the first-round lead. Im had a pair of eagles and ...

House kills rat control bill. What’s next for the Treasure Valley pest problem?

I don’t think the rats are an issue,” one lawmaker said. “I think the real problem is that every issue becomes an expansion ...
Brian Barczyk on MSN

Watch what happens when she comes too close to a black python

Today we’re walking through the snakes at the Reptarium, starting with some of the least expensive species and ending with the most valuable ones in the collection. From normal ball pythons that can ...
SecurityWeek

ForceMemo: Python Repositories Compromised in GlassWorm Aftermath

Hackers use credentials stolen in the GlassWorm campaign to access GitHub accounts and inject malware into Python ...
Eagle-Tribune

As attacks rise, state turning corner in cybersecurity threats

BOSTON — Cybersecurity vulnerabilities across the executive branch were "significantly reduced" last year, at a time when Massachusetts residents have become increasingly interactive online with state ...
Traverse City Record-Eagle

What to know about attacks at Old Dominion University and a Michigan synagogue

Communities were left reeling from attacks that unfolded less than two hours apart at a Michigan synagogue and at Old Dominion University in Virginia, violence that officials said would have been ...